Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YsdFXO7qzIW-qr8_lv-5Uc1e4vc.roa
File: YsdFXO7qzIW-qr8_lv-5Uc1e4vc.roa (raw, json)
Hash identifier: 1LOXe1rRw6eUihI9N6tBcFXxiGGUDtEFAYBao5HcdiA=
Subject key identifier: 62:C7:45:5C:EE:EA:CC:85:BE:AA:BF:3F:96:FF:B9:51:CD:5E:E2:F7
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC8026FD83253C6B0E76C72317D200874
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YsdFXO7qzIW-qr8_lv-5Uc1e4vc.roa
Signing time: Tue 02 Jan 2024 02:30:52 +0000
ROA not before: Tue 02 Jan 2024 02:30:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 194.5.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 18:29:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:6f:d8:32:53:c6:b0:e7:6c:72:31:7d:20:08:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:30:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62c7455ceeeacc85beaabf3f96ffb951cd5ee2f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c5:c1:17:ca:4e:cd:e7:51:d7:8a:4f:0a:30:
3d:c6:cc:7e:12:23:4d:7a:48:43:20:51:d9:85:7a:
a4:1e:10:ca:ec:2e:3a:8a:6f:1d:df:23:2a:f2:31:
23:75:b8:55:2c:ee:2b:4f:21:2e:c1:3f:c1:e3:c6:
88:3e:87:06:0a:32:3b:6e:4f:d1:fc:94:49:e5:6f:
b5:6c:99:5b:c4:9d:d2:6c:45:49:af:c5:f5:90:52:
76:29:cc:ba:89:b2:f0:7c:7b:8e:c0:c1:dd:36:87:
42:eb:92:30:31:71:52:0c:21:aa:02:1f:fe:77:32:
76:49:a5:13:3b:e7:42:d2:7e:f6:4d:cc:ef:25:d8:
20:a0:da:a3:49:cc:0e:9c:7d:c4:04:03:ab:7c:62:
21:e0:e8:98:99:36:06:be:41:c5:21:af:1f:e6:7a:
5b:d2:3e:4a:aa:5a:b6:60:8f:2b:7d:64:d6:23:eb:
d0:56:27:09:03:7e:44:ed:7b:66:56:8e:29:2d:c9:
65:53:43:ff:fa:23:e3:fa:89:f5:59:b2:60:38:e8:
7e:6a:ca:b9:f3:d2:37:c8:82:dc:b9:f3:00:0b:84:
eb:ec:67:d4:35:21:3a:eb:b1:d0:f8:32:89:99:20:
c7:34:64:a1:1f:f9:9a:3f:85:c8:52:1d:f5:b1:ce:
1e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C7:45:5C:EE:EA:CC:85:BE:AA:BF:3F:96:FF:B9:51:CD:5E:E2:F7
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YsdFXO7qzIW-qr8_lv-5Uc1e4vc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.67.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:18:7c:96:e5:98:09:b2:89:18:c2:3d:18:20:15:b8:3b:38:
cc:32:48:89:cd:0d:94:ae:8b:84:b6:8d:66:6c:e2:73:1c:3f:
58:4a:fc:9a:6b:ce:47:5d:d5:68:69:95:50:13:4e:1f:0e:a4:
36:4a:99:78:a3:9a:4a:47:65:08:2e:3c:18:7c:08:30:79:1d:
18:4e:15:69:76:ba:9e:41:3b:3e:31:8b:17:d1:74:71:92:11:
ca:c0:f5:e8:9d:36:1e:81:53:7c:32:7f:dc:3f:33:70:50:40:
92:b3:e1:21:ee:8d:5f:77:a3:d9:60:b1:44:f9:b4:de:27:07:
82:36:9d:52:d9:a5:d5:67:73:c0:79:20:0b:65:12:fa:03:f6:
22:3b:2d:f5:00:d7:41:ad:eb:70:54:20:47:1e:0a:4a:00:57:
3d:d6:34:ce:b7:47:31:99:34:9e:a1:d6:a5:30:08:56:e7:20:
f0:ef:1c:ad:ce:58:b0:2b:fc:bb:b2:d5:25:a4:dc:57:15:d2:
8f:50:ec:02:83:7c:a1:fe:f2:35:84:3d:f1:81:63:1d:20:da:
fd:c7:e9:6f:f8:1d:46:4b:59:15:1b:c6:8c:f5:9c:76:ad:56:
d0:5a:cc:1d:5d:55:9f:7c:b7:80:95:1b:f2:54:cc:30:3c:26:
05:53:d1:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org